Bug#1041271: maildir-utils: public shared library shipped in maildir-utils binary package

Package: maildir-utils Version: 1.8.14-2 Severity: serious Justification: violates policy 8.1 -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 I think that libguile-mu.* need to be either moved to a private directory or to their own packages. I don't know enough about guile to say which is

Bug#1037765: maildir-utils: ftbfs with GCC-13

Matthias Klose writes: > Package: src:maildir-utils > Version: 1.8.14-1 > Severity: normal > Tags: sid trixie > User: debian-...@lists.debian.org > Usertags: ftbfs-gcc-13 > > [This bug is targeted to the upcoming trixie release] > > Please keep this issue open in the bug tracker for the package

Bug#1027414: luit: broken apt install xorg from a debootstrap installed environment

Package: luit Version: 2.0.20221028-1 Followup-For: Bug #1027414 X-Debbugs-Cc: I have been told to report this by #debian on libera irc, dmr...@inspirondebian.home Breaks: x11-utils (<<7.7+6) but bookworm contains x11-utils (7.7+5) -- System Information: Debian Release: 12.0 APT prefers

Bug#1041004: firmware-b43-installer: Drivers in this package are not available in debian-12.0.0-amd64-netinst.iso at time of writing.

installing on various models of Macbook Pro. Thank you David [0] https://cdimage.debian.org/debian-cd/current/amd64/iso-cd/debian-12.0.0-amd64-netinst.iso -- System Information: Debian Release: 12.0 APT prefers stable-security APT policy: (500, 'stable-security'), (500, 'stable') Architecture

Bug#1040644: [INTL:ro] Translation-revision of "apt" to Romanian

> in part , the reported errors/"sins", are due to this. I would classify these as "mistake" at most  > În miercuri 12 iulie 2023 14:41:44 (+02:00), David Kalnischkies a scris: >> On Sat, Jul 08, 2023 at 01:04:28PM +, Remus-Gabriel Chelu wrote: >> | +# Adva

Bug#1040973: RFP: haunt -- static site generator written in Guile Scheme

Package: wnpp Severity: wishlist X-Debbugs-Cc: vagr...@debian.org -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 * Package name: haunt Version : 0.3.0 Upstream Contact: David Thompson * URL : https://git.dthompson.us/haunt.git * License : GPL3+ Programming

Bug#1040644: [INTL:ro] Translation-revision of "apt" to Romanian

e first. Best regards David Kalnischkies signature.asc Description: PGP signature

Bug#1040856: RFP: duppy -- implements both a subset of RFC2136 and offers a simple HTTP API for performing dynamic DNS updates

Package: wnpp Severity: wishlist -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 * Package name: duppy Version : 2022-06-09 Upstream Contact: Bjarni R. Einarsson * URL : https://github.com/pagekite/duppy * License : MIT/X Programming Lang: python

Bug#1040810: ITP: readpe -- command-line tools to manipulate Windows PE files

Package: wnpp Severity: wishlist Owner: David da Silva Polverari X-Debbugs-Cc: debian-de...@lists.debian.org * Package name: readpe Version : 0.82 Upstream Contact: https://github.com/mentebinaria/readpe/issues * URL : https://github.com/mentebinaria/readpe * License

Bug#1040303: magpie/0.9.2-1 [ITP] -- Window manager and compositor library for the Budgie Desktop)

Hi, I have taken the opportunity to simplify the packaging - one less binary and no longer needs postinst and preinst scripts Please accept this version as a sponsorship request The source builds the following binary packages: gir1.2-magpie-0 - GObject introspection data for magpie

Bug#1040780: icingaweb2 incompatible with php8.2

property Icinga\Web\Form\Validator \InArray::$zfBreakChainOnFailure is deprecated in /usr/share/icingaweb2/library/vendor/Zend/Form/Element.php on line 2176 It would be nice if you could update this package for using with php8.2. Greetings, David

Bug#1040689: Workaround without init and site file

Balbir Thomas writes: > Thanks to bremner on IRC it was found that > launching emacs disabling the init and site lisp file > ("emacs -Q") seems to fix the issue i.e. org-export-dispatch > does work and and exported file is generated. I was thinking about this a bit more, and I wonder if the two

Bug#1040689: List of emacs related packages installed

Balbir Thomas writes: > As requested I am listing below all Emacs related > packages installed. These list was generated using > "dpkg --get-selections" and grepping for "emacs" and > "elpa". On IRC you later mentioned you duplicated the problem with a smaller set of packages installed. It

Bug#1040758: bullseye-pu: package spip/3.2.11-3+deb11u9

+++ spip-3.2.11/debian/changelog 2023-07-08 20:38:26.0 +0200 @@ -1,3 +1,11 @@ +spip (3.2.11-3+deb11u9) bullseye; urgency=medium + + * Backport security fix from 4.1.11 +- use an auth_desensibiliser_session() function to centralize extended + authentification data filtering. + + -- David

Bug#1040756: bookworm-pu: package spip/4.1.9+dfsg-1+deb12u2

an auth_desensibiliser_session() function to centralize extended + authentification data filtering. + + -- David Prévot Sat, 08 Jul 2023 20:29:04 +0200 + spip (4.1.9+dfsg-1+deb12u1) bookworm; urgency=medium [ David Prévot ] diff -Nru spip-4.1.9+dfsg/debian/patches/0009-security-Utiliser-une

Bug#1040705: Call to undefined function GuzzleHttp\json_decode()

Package: roundcube-core Version: 1.6.1+dfsg-1 I tried setting up oauth2 in roundcube, but when the OIDC provider redirects back to roundcube, I get an "Oops... something went wrong!" page. When that happens, /var/log/roundcube/errors.log shows: [09-Jul-2023 17:00:49 UTC] PHP Fatal error:

Bug#1040684: RFS: opendmarc/1.4.2-3 -- Domain-based Message Authentication, Reporting and Conformance (DMARC) milter

he package with 'dget' using this command: dget -x https://mentors.debian.net/debian/pool/main/o/opendmarc/opendmarc_1.4.2-3.dsc Changes since the last upload: opendmarc (1.4.2-3) unstable; urgency=medium . [ David Bürgin ] * debian/patches: Add missing upstream bug metadata, add n

Bug#1040673: needrestart: Fix typo in VM check

Package: needrestart Version: 3.6-5 Severity: minor Tags: patch upstream X-Debbugs-Cc: t...@debian.org needrestart has a typo in the output when checking if VMs need to be restarted: VM guests are running outdated hypervisor (qemu) binaries on this host: 'Unkown VM' -- Package-specific info:

Bug#1040499: mail uses short hostname for return address, instead of fqdn

em... mail.mailutils: system yields 0=Success mail.mailutils: source=system, name=dseomn, passwd=x, uid=1000, gid=1000, gecos=David Mandelberg dir=/home/dseomn, shell=/bin/bash, mailbox=/var/mail/dseomn, quota=0, change_uid=1 mail.mailutils: Getting auth info for UID 1000 mail.mail

Bug#1040333: restic fails when using rest backend

I found out that when I use rest:http://localhost:port as restic endpoint it fails but when I use rest:http://127.0.0.1:port it works. So maybe it's not strictly restic related. -- Avís - Aviso - Legal Notice - (LOPD) - http://legal.ifae.es

Bug#1040333: restic fails when using rest backend

Package: restic Version: 0.14.0-1+b5 Severity: important X-Debbugs-Cc: dro...@ifae.es Dear Maintainer, I have a restic-server. Usually I ran: restic -r "rest:http://:8000" snapshots and other commands correctly but it stopped working after upgrading to Debian 12. * What led

Bug#1040303: RFS: magpie/0.9.1-1 [ITP] -- Window manager and compositor library for the Budgie Desktop

. * Initial Release (Closes: #1040005) Regards, -- David Mohammed

Bug#1040005: ITP:magpie - window manager for the budgie desktop

Package: wnpp Severity: wishlist Owner: David Mohammed (fossfree...@ubuntu.com) Package name : magpie Version : 0.9.1 Upstream Author : BuddiesOfBudgie URL : https://github.com/BuddiesOfBudgie/magpie License : GPL-2+ and GPL-3+ and LGPL-2+ and LGPL-2.1+ and Expat and NTP-BSD-variant and SGI-B

Bug#1039972: RFP: soju -- user friendly irc bouncer

Package: wnpp Severity: wishlist X-Debbugs-Cc: debian...@lists.debian.org * Package name: soju Version : 0.6.2 Upstream Contact: Simon Ser * URL : https://soju.org * License : AGPL3 Programming Lang: golang Description : soju soju is a user-friendly

Bug#1039923: RFP: scip -- linear and nonlinear mixed integer optimization suite

Package: wnpp Severity: wishlist X-Debbugs-Cc: debian-scie...@lists.debian.org, debian-m...@lists.debian.org * Package name: scip Version : 8.0.3 Upstream Contact: s...@zlib.de (Mailing list) * URL : https://www.scipopt.org/ * License : Apache 2.0 Programming

Bug#1039743: phpunit 10 transition [Was: Bug#1039743: christianriesen-base32: FTBFS with phpunit 10: make[1]: *** [debian/rules:19: override_dh_auto_test] Error 2]

Hi, Le 29/06/2023 à 00:24, Athos Ribeiro a écrit : On Wed, Jun 28, 2023 at 10:31:53PM +0100, Adam D. Barratt wrote: On Wed, 2023-06-28 at 17:57 -0300, Athos Ribeiro wrote: […] Severity: serious Justification: FTBFS Tags: trixie sid ftbfs User: pkg-php-p...@lists.alioth.debian.org Usertags:

Bug#680619: nullmailer: dpkg-reconfigure corrupts IPv6 zone index in "remotes"

Jay writes: > Pretty sure this also affects passwords with special characters. I'm not > sure what problem the postinst script is trying to solve. It is transforming this input format This is a colon-separated list of remote servers to which to send each message. Each entry

Bug#1033852: racket-mode: autopkgtest regression: Process *Racket REPL* connection broken by remote peer

Control: reopen -1 Control: found -1 racket-mode/20230425git0-1 > The release team has announced [1] that failing autopkgtest on amd64 and > arm64 are considered RC in testing. [Release Team member hat on] Because > we're currently in the hard freeze for bookworm, I have marked this bug > as

Bug#1039119: darktable: use packaged lua

roucaries bastien writes: > > Yes in your case i cheched by grepping thé build log. Lua ils compiléd what > why i set rc severity. I suspect that you saw a different package with Lua in the name, namely LuaAutoC. The embedding of that library is a bug, but I'm not sure there's any practical

Bug#1039119: darktable: use packaged lua

Bastien Roucariès writes: > Source: darktable > Version: Use packaged lua > Severity: serious > Justification: embded code copy > > Dear Maintainer, > > It appear that your package embded and compile lua > > Could you: > - use the packaged lua lib > - repack in order to avoid accidental

Bug#1033852: racket-mode: autopkgtest regression: Process *Racket REPL* connection broken by remote peer

Paul Gevers writes: > Source: racket-mode > Version: 20210916git0-2 > Severity: serious > Control: tags -1 bookworm-ignore > User: debian...@lists.debian.org > Usertags: regression This bug should be fixed in testing as soon as the just-uploaded 20230425git0-2 migrates to testing (a few days?).

Bug#1038903: initscripts: orphan-sysvinit-scripts needs to be a prerequisite, not optional.

On Thu, 22 Jun 2023, Mason Loring Bliss wrote: On Fri, Jun 23, 2023 at 01:30:30AM +0200, Thorsten Glaser wrote: On Thu, 22 Jun 2023, David Griffith wrote: This was prompted when I found that rsyslog stopped working on Bullseye when upgraded to Bookworm. What sort of depenency would you

Bug#1038903: initscripts: orphan-sysvinit-scripts needs to be a prerequisite, not optional.

On Fri, 23 Jun 2023, Thorsten Glaser wrote: On Thu, 22 Jun 2023, David Griffith wrote: This was prompted when I found that rsyslog stopped working on Bullseye when upgraded to Bookworm. What sort of depenency would you suggest to implement the following? “Read the release notes.” Or use

Bug#1038903: initscripts: orphan-sysvinit-scripts needs to be a prerequisite, not optional.

On Fri, 23 Jun 2023, Thorsten Glaser wrote: On Thu, 22 Jun 2023, David Griffith wrote: of no use unless sysvinit is being used and its absence leads to random packages (some important) not working at all; orphan-sysvinit-scripts should be a prerequisite. Huh? No. Currently, orphan-sysvinit

Bug#1038903: initscripts: orphan-sysvinit-scripts needs to be a prerequisite, not optional.

Package: initscripts Version: 3.06-4 Severity: important When doing an upgrade of a Bullseye machine to Bookworm, I noticed that rsyslog stopped writing log entries. There was no immediate clue as to what was going on. After poking around online, I found Bug#1037039 which said that

Bug#1038857: apt-utils: installed but aptitude claims not installed.

absence. Note that as the message says the configuration is "delayed" as in happening in-place rather than upfront, so at least this is not dangerous and you don't miss anything, just puzzling. Best regards David Kalnischkies signature.asc Description: PGP signature

Bug#1038158: Uses /etc/nullmailer/../mailname instead of /etc/mailname; misleading message

Andras Korn writes: > > I'm running nullmailer-send via runit. stdout is definitely a pipe (and so is > stderr); somewhere it opens /dev/console explicitly. > If so, it does so in a somewhat non-obvious way, since the only mention of /dev/console in the source is in README.Debian. As far as I

Bug#1038158: Uses /etc/nullmailer/../mailname instead of /etc/mailname; misleading message

Andras Korn writes: > I began using a revision tracking system for some configfiles. This > involved replacing /etc/nullmailer with a symlink to a directory > within the local working copy. I don't know if it's practical for you, but as a workaround etckeeper works fine with the current

Bug#1038388: shotcut: Shotcut 23 timeline widget is blank

> > > > Hmm, it seems you've named some packages that don't exist. See attached. I have installed shotcut version 23.06.14+git20230616+ds-3, that fixes that problem too, but shotcut itself doesn't work yet. The timeline is not usable in my system :( -- David

Bug#1038154: bookworm-pu: package spip/4.1.9+dfsg-1+deb12u1

2023-06-11 15:38:54.0 +0200 @@ -1,3 +1,19 @@ +spip (4.1.9+dfsg-1+deb12u1) bookworm; urgency=medium + + [ David Prévot ] + * Add CVE to previous changelog entry + * Update documented branch + * Backport security fixes from 4.1.10 +- Limit recursion depth in protege_champ() function

Bug#1038153: bullseye-pu: package spip/3.2.11-3+deb11u8

in the d/changelog [x] I reviewed all changes and I approve them [x] attach debdiff against the package in oldstable [x] the issue is verified as fixed in unstable Regards, David diff -Nru spip-3.2.11/debian/changelog spip-3.2.11/debian/changelog --- spip-3.2.11/debian/changelog 2023-02-28 22

Bug#1038136: RFS: budgie-backgrounds/1.0-1 [ITP] -- Default set of background images for the Budgie Desktop

able; urgency=medium . * Initial Release (Closes: #1037965) Regards, -- David Mohammed

Bug#1033130: gcc-snapshot: FTBFS on hppa - sys/mman.h: No such file or directory

On 2023-06-14 2:31 p.m., John David Anglin wrote: On 2023-06-14 1:00 p.m., Matthias Klose wrote: wondering if configuring with --disable-libgcc would help? I don't need to do this when building the hppa64 gcc target by itself. Linux may need libgcc. I think configure must be finding

Bug#1037965: ITP:budgie-backgrounds - default set of background images for the budgie desktop

Package: wnpp Severity: wishlist Owner: David Mohammed (fossfree...@ubuntu.com) Package name : budgie-backgrounds Version : 1.0 Upstream Author : BuddiesOfBudgie URL : https://github.com/BuddiesOfBudgie/budgie-backgrounds License : CC0-1.0 Programming Lang: None Description : Default set

Bug#1033130: gcc-snapshot: FTBFS on hppa - sys/mman.h: No such file or directory

for hppa64 installed at this time. Something seems to have changed in the build mechanism between gcc-12 and gcc-13. I have a debian non-buildd build of gcc-13 going.  Maybe it will help to find issue. -- John David Anglin dave.ang...@bell.net

Bug#1036061: frr: CVE-2023-31489

Fixed upstream in 9f1ba873637fd6ce4a2d366eafcf41402775852b for 8.4, pending pick-up together with fix for #1036062 / CVE-2023-31490. (Would bump to upstream 8.4.4 if that's acceptable?) -equi

Bug#1036062: frr: CVE-2023-31490

Argh, wrong bug, previous mail was for 1036061. On Tue, Jun 13, 2023 at 03:17:52PM +0200, David Lamparter wrote: > Fixed upstream in 9f1ba873637fd6ce4a2d366eafcf41402775852b on stable/8.4 > branch. CVE-2023-31489 / 1036062 was fixed upstream on master but not backported to 8.4 yet; now p

Bug#1036062: frr: CVE-2023-31490

Fixed upstream in 9f1ba873637fd6ce4a2d366eafcf41402775852b on stable/8.4 branch. Debian fix incoming with bump to 8.4.4 if that's OK? That wouldn't be a targeted security fix, but FRR minor versions are bugfix-only. -equi

Bug#1035829: frr: CVE-2022-43681 CVE-2022-40318 CVE-2022-40302

notfound 1035829 frr/8.4.2-1 stop On Tue, May 09, 2023 at 09:19:30PM +0200, Moritz Mühlenhoff wrote: > CVE-2022-43681[0]: > CVE-2022-40318[1]: > CVE-2022-40302[2]: All 3 issues are fixed/not present in 8.4 and thus also 8.4.2-1: - CVE-2022-43681 - 6c4ca9812976596bf8b5226600269fc4031f1422 -

Bug#1037460: RM: icingaweb2-module-ipl -- RoM; obsoleted by icinga-php-library

Package: ftp.debian.org Severity: normal Icingaweb2-module-ipl is removed from unstable. This should also be removed from experimental. Greetings, David

Bug#1037242: liblapacke: dsyev() only returns upper/lower triangle of eigenvector matrix

answers for certain mathematical techniques possibly including symmetric matrix inversion and/or multilinear regression. I think it would be better to have it fixed but I have no idea how difficult it would be to patch debian stable. I will try the new debian testing and see whether it is also

Bug#1037179: elpa-debian-el: apt-sources.el : warning for use of interactive only feature

Package: elpa-debian-el Version: 37.10 Severity: minor When editing /etc/apt/sources.list, I get following message : Warning (comp): apt-sources.el:338:4: Warning: ‘end-of-buffer’ is for interactive use only; use ‘(goto-char (point-max))’ instead. -- System Information: Debian Release: 12.0

Bug#1033341: org-mode: CVE-2023-28617

Salvatore Bonaccorso writes: > > Looking at https://security-tracker.debian.org/tracker/CVE-2023-28617 > I think we should be fine for bookworm already, correct? Yes, I think what is there makes sense, given the constraints of expressing a weird situation. d

Bug#1033341: org-mode: CVE-2023-28617

Nicholas D Steeves writes: > fixed 1033341 org/mode/9.5.2+dfsh-5 > fixed 1033341 org-mode/9.6.6+dfsg-1~exp1 > thanks Are you sure about that? It depends on emacs 28.2, which afaik has the vulnerable org-mode embedded. I guess it's a question of interpretation, but the vulnerability is still

Bug#1037081: auto-apt-proxy: detect_apt_cacher_ng fails when behind a proxy/load balancer that modifies HTTP status line

Package: auto-apt-proxy Version: 14.1 Severity: normal X-Debbugs-Cc: david.nest...@gmail.com Dear Maintainer, When running auto-apt-proxy behind something (like Envoy) that does not preserve the HTTP status line, detect_apt_cacher_ng does not find its expected "406 Usage Information" HTTP

Bug#1037051: libfinance-quote-perl: Quotes from Yahoo stopped working again.

replaced my copy of YahooJSON.pm with the one from 1.56 and it solved my issue. David -- System Information: Debian Release: 12.0 APT prefers testing APT policy: (900, 'testing'), (500, 'testing-security'), (100, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign

Bug#1026126: update on crosvm dependencies

Thanks for your work, I would love to pick the crosvm from Salsa and compile it for our Mesa3D CI builds at some point! David On Mon, 08 May 2023 14:21:29 +0900 Junichi Uekawa wrote: > > more dependencies, named-lock and bitreader uploaded to NEW queue. > > -- David Heidelber

Bug#1035757: unblock: org-mode/9.5.2+dfsh-5

Paul Gevers writes: > > The debdiff in message #36 looks OK. If the upload happens very soon, as > in today, than we'll see if we can have it migrate in time. > > Paul Uploaded and built: https://buildd.debian.org/status/fetch.php?pkg=org-mode=9.5.2%2Bdfsh-5=all=1685619895 d

Bug#1037001: r-cran-htmltable: Homepage link doesn't work because it is case-sensitive

Package: r-cran-htmltable Severity: minor X-Debbugs-Cc: da...@bamsoftware.com The package homepage https://cran.r-project.org/package=htmltable leads to a 404 error page. The link https://cran.r-project.org/package=htmlTable works (note capitalization). -- System Information: Debian Release:

Bug#1036723: [pkg-php-pear] Bug#1036723: RM: php-finder-facade/experimental -- ROM; Useless in Debian

Le 24/05/2023 à 21:07, David Prévot a écrit : Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: php-finder-fac...@packages.debian.org, Debian PHP PEAR Maintainers Control: affects -1 + src:php-finder-facade [ Forgot to add

Bug#1036726: RM: php-doctrine-bundle -- ROM; Useless in Debian

Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: php-doctrine-bun...@packages.debian.org, Debian PHP PEAR Maintainers Control: affects -1 + src:php-doctrine-bundle Hi, As explained two years ago in #996108, this package is not

Bug#1036725: RM: php-token-stream -- ROM; Useless in Debian

Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: php-token-str...@packages.debian.org, Debian PHP PEAR Maintainers Control: affects -1 + src:php-token-stream Hi, As explained three years ago in #977802, this package is not used

Bug#1036723: RM: php-finder-facade/experimental -- ROM; Useless in Debian

Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: php-finder-fac...@packages.debian.org, Debian PHP PEAR Maintainers Control: affects -1 + src:php-finder-facade signature.asc Description: PGP signature

Bug#1036724: RM: php-finder-facade -- ROM; Useless in Debian

Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: php-finder-fac...@packages.debian.org, Debian PHP PEAR Maintainers Control: affects -1 + src:php-finder-facade Hi, As explained three years ago in #977801, this package is not used

Bug#1036708: ITS: dosbox is dead, move to active, high quality dosbox-staging successor

Hi! I had no idea DOSBox-x exist. Anyway, we had currently only `dosbox` package which working very poorly on mobile devices. My intent is fix that by replacing DOSBox with better quality codebase. Feel free to close then. David On 24/05/2023 17:34, Stephen Kitt wrote: Hi, On Wed, 24

Bug#1036708: ITS: dosbox is dead, move to active, high quality dosbox-staging successor

Package: dosbox Version: 0.74-3-4+b1 Severity: normal X-Debbugs-Cc: sk...@debian.org Dear Maintainer, DOSBox upstream is dead for a long time. Since upstream is dead, multiple good or worse quality forks emerged over the time. One of serious ones is DOSBox-staging, which implemented testing,

Bug#1036634: RM: monado/stable -- NVIU; 2 years old codebase for very active project targeting recent hardware and software stack (new version didn't make it into stable).

Hello Paul. My goal was to drop the package for the Debian 12 (bookworm); it makes no sense to include the package and confuse users. However, I'll remind Ryan (CCed) from time to time to bump the Monado into unstable, so at the next release, we get a recent Monado to play with David On 23

Bug#1036634: RM: monado/stable -- NVIU; 2 years old codebase for very active project targeting recent hardware and software stack (new version didn't make it into stable).

Package: ftp.debian.org Severity: normal User: ftp.debian@packages.debian.org Usertags: remove X-Debbugs-Cc: debian-rele...@lists.debian.org Monado package is in very active development, offering support for recent XR headsets. The risk is getting users discouraged by very old and already

Bug#1036550: f3: dead homepage referenced in man page

Package: f3 Version: 8.0-2 Severity: normal -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 It seems like https://oss.digerati.com.br no longer exists. Unfortunately the man pages still point people there. - -- System Information: Debian Release: 12.0 APT prefers testing-security APT

Bug#1036551: f3: incorporate more documentation into man pages

Package: f3 Version: 8.0-2 Severity: wishlist -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 The f3 man pages are pretty sparse, while the package ships other documentation as rst. Something like sphinx-doc would make it relatively easy to include some of README into the man pages. - -- System

Bug#1036399: piuparts: false positives for unowned files left after purge

David Bremner writes: > David Bremner writes: > >> Package: piuparts >> Version: 1.1.7 >> Severity: normal >> >> -BEGIN PGP SIGNED MESSAGE- >> Hash: SHA256 >> >> The following output from "piuparts -t /var/tmp --ap

Bug#1035757: unblock: org-mode/9.5.2+dfsh-5

David Bremner writes: > 1m1.2s ERROR: FAIL: Package purging left files on system: > /root/.ssh/ not owned > /var/cache/private/ not owned > /var/lib/private/ not owned > /var/lib/systemd/coredump/ not owned > /var/lib/systemd/pstore/not owned > /var/log

Bug#1036399: piuparts: false positives for unowned files left after purge

David Bremner writes: > Package: piuparts > Version: 1.1.7 > Severity: normal > > -BEGIN PGP SIGNED MESSAGE- > Hash: SHA256 > > The following output from "piuparts -t /var/tmp --apt emacs" (also on > piuparts.debian.org) looks suss to me: > >

Bug#1036399: piuparts: false positives for unowned files left after purge

Package: piuparts Version: 1.1.7 Severity: normal -BEGIN PGP SIGNED MESSAGE- Hash: SHA256 The following output from "piuparts -t /var/tmp --apt emacs" (also on piuparts.debian.org) looks suss to me: 0m43.8s INFO: Warning: Package purging left files on system: /root/.ssh/not owned

Bug#1036359: crashes with (wrong-type-argument consp nil)

Antoine Beaupre writes: > Package: elpa-markdown-toc > Version: 0.1.5-2 > Severity: grave > > In Debian bookworm, markdown-toc is currently unusable. > > Given the following markdown buffer: > Hi Antoine; I agree that markdown file looks innocuous, but do you know if it is just this file or

Bug#1036313: php-slim-psr7: Useless (and harmful) dependency on (recent) php-symfony-polyfill-php80

min can’t be installed either from backports). Regards, -- David Prévot Marseille (37 rue Guibal, Pôle Média, 13003) / Paris / Montréal http://evolix.com | Twitter: @Evolix @EvolixNOC | http://blog.evolix.com

Bug#1035971: linux-image-6.3.0-0-amd64: IRQ warnings from amdgpu Navi 33 / Radeon RX 7700S ...

ASAP ;) Cheers, -- David

Bug#1036212: visualvm: Version 2.1.5 doesn't work with Java 17

version, please? Thanks. -- David -- System Information: Debian Release: 12.0 APT prefers testing APT policy: (500, 'testing'), (500, 'stable'), (500, 'oldstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel: Linux 6.1.0-9-amd64 (SMP w/4 CPU threads

Bug#1034378: Allow Percentage Formatting in apt

ators are per convention prefixed with: "TRANSLATORS: " (see existing usages) and should try a little harder to convey what a string is used for, meanwhile a "localize according to your locale settings" could be said about each and every string… Best regards David Kalnischkies signature.asc Description: PGP signature

Bug#1033471: maximize* commands don't work for Emacs is working for GNOME (Debian Stable (devilspie2_0.43-4_amd64.deb) + MATE installed from tasksel), and MATE (Debian Unstable (devilspie2_0.43-5_amd6

### * Debian Stable (devilspie2_0.43-4_amd64.deb) + MATE installed from tasksel *    Works!: Open GNOME. Open $ devilspie in the terminal. Open emacs. It actually opens maximized!*         Note that MATE is required. Without MATE: Debian Stable

Bug#1034406:

Have you received it

Bug#1035891: openjdk-17-jre-headless: Crashes when ulimit -v is in effect

Package: openjdk-17-jre-headless Version: 17.0.6+10-1~deb11u1 Severity: important Tags: upstream Dear Maintainer, On a certain multi-user system, I have the following lines in /etc/profile ... ulimit -d 99 ulimit -v 389 In other words, almost 4G virtual memory per process, of which 1G

Bug#1035848: xutils-dev: Please add support for riscv64 especially for imake

Package: xutils-dev Version: 1:7.7+6+b1 Severity: important X-Debbugs-Cc: hpfou...@gmail.com Dear Maintainer, *** Reporter, please consider answering these questions, where appropriate *** * What led up to the situation? * What exactly did you do (or not do) that was effective (or

Bug#1035822: fontforge: Superfluous build dependency on potrace

Source: fontforge Version: 1:20201107~dfsg-1 Severity: minor Dear Maintainer, Please drop the build dependency on potrace from fontforge. Prior to upstream fontforge's transition from Autotools to CMake in version 20200314 [1], the Autoconf configure script contained a compile-time check for

Bug#1015213: Bug 1015213 Update

It looks like the issue with v1.0.0 tag here is some sort of github external origin issue. This seems to be resolved with the v1.0.1 tag. If you use a web browser to examine the older v1.0.0 tag, you see a github warning of "This commit does not belong to any branch on this repository, and may

Bug#1035690: libfinance-quote-perl: GNUCash quotes from Yahoo stopped working

/quote?symbols='; my $YIND_URL_TAIL = ''; sub methods { David -- System Information: Debian Release: 12.0 APT prefers testing APT policy: (900, 'testing'), (500, 'testing-security'), (100, 'unstable'), (1, 'experimental') Architecture: amd64 (x86_64) Foreign Architectures: i386 Kernel

Bug#1035650: elpa-org version older than built-in Org in bookworm

Maxim Nikulin writes: > Package: elpa-org > Version: 9.5.2+dfsh-4 > Severity: serious > > Installing elpa-org package to current Debian testing (bookworm) results > in older Org version than Org shipped with Emacs. I consider it as a > really bad surprise for people who will upgrade from

Bug#1034650: debian-installer: bookworm d-i rc1: apt-get clean breaks bash-completion

ent (for example, by recreating them on-the-fly) The completion script explicitly disables the recreation on-the-fly as creating the files takes a while robbing users for many seconds of their interactivity. So, we can't just "fix" the completion script as that has a(nother?) set of users complain as well. Best regards David Kalnischkies signature.asc Description: PGP signature

Bug#1034790: apt: APT::Get::AutomaticRemove true + --no-remove results in failure to install: Handler silently failed

g for installation (that is the most simple form of what the commit I pointed to means with "allowing pkg modifiers for the upgrade commands" btw). Best regards David Kalnischkies [0] https://salsa.debian.org/apt-team/apt/-/commit/c89b22c285d6c4a3cb64689ff26e84af4d1477f2 signature.asc Description: PGP signature

Bug#1033675: release-notes: apt-key improves system security with 3rd party sources

release notes job to explain how to do that properly (and, as said, it varies a bit by 3rd party). As a sidenote – not a recommendation from me as I never used it myself – the package "extrepo" is supposed to help with the usecase of adding 3rd party repositories; it isn't new either but feel free to check it out. Best regards David Kalnischkies signature.asc Description: PGP signature

Bug#1035343: racket: Consider using CS on all architectures

Philip McGrath writes: > I don't fully understand the nuances of the bookworm freeze policy. (I'm > sorry > I didn't report this sooner.) It seems at least plausible that this could be > a > "small, targeted fix[]", especially from the perspective that it would amount > to bringing a few

Bug#1034854: [pkg-php-pear] Bug#1034854: symfony: autopkgtest regression: "error:10800075:PKCS7 routines::certificate verify error".

Hi Paul, Thanks for the report. Le 25/04/2023 à 21:43, Paul Gevers a écrit : Source: symfony […] Your package has an autopkgtest, great. However, it fails since April 2023. Meh, between 3 and 19 on Sid and between 11 and 21 on Bookworm. […] Targeted fixes are still welcome. […] 7)

Bug#1034813: unblock: pev/0.81-9

2023-04-22 19:41:47.0 + @@ -1,3 +1,17 @@ +pev (0.81-9) unstable; urgency=medium + + [ Debian Janitor ] + * Use secure URI in Homepage field. + * Update standards version to 4.6.2, no changes needed. + + [ David da Silva Polverari ] + * debian/copyright: updated packaging copyright

Bug#1034680: retroarch-assets: Missing icons (Favorites, and Netplay Rooms) for the default XMB theme, for Debian Stable (but solve in Testing, and Unstable)

On 2023-04-23 18:44, Jonathan McDowell wrote: On Sun, Apr 23, 2023 at 01:39:51PM +0200, David Hedlund wrote: On 2023-04-23 13:04, Jonathan McDowell wrote: On Fri, Apr 21, 2023 at 07:37:44PM +0200, David Hedlund wrote: On 2023-04-21 19:00, Jonathan McDowell wrote: On Fri, Apr 21, 2023 at 03

Bug#1034680: retroarch-assets: Missing icons (Favorites, and Netplay Rooms) for the default XMB theme, for Debian Stable (but solve in Testing, and Unstable)

On 2023-04-23 13:04, Jonathan McDowell wrote: On Fri, Apr 21, 2023 at 07:37:44PM +0200, David Hedlund wrote: On 2023-04-21 19:00, Jonathan McDowell wrote: On Fri, Apr 21, 2023 at 03:33:00PM +0200, David Hedlund wrote: Package: retroarch-assets Version: 1.3.6+git20160731+dfsg1-2 Open

Bug#1034736: bullseye-pu: package pev/0.81-3+deb11u1

by pev utilities can trigger arbitrary code execution. (Closes: #1034725) + + -- David da Silva Polverari Sat, 22 Apr 2023 20:48:00 + + pev (0.81-3) unstable; urgency=medium * QA upload. diff -Nru pev-0.81/debian/patches/0002-fix-bo-pe_exports.patch pev-0.81/debian/patches/00

Bug#1034731: bullseye-pu: package pev/0.81-3

1,3 +1,11 @@ +pev (0.81-3+deb11u1) bullseye; urgency=medium + + * debian/patches/0002-fix-bo-pe_exports.patch: created to fix a buffer +overflow vulnerability present on libpe's pe_exports function +(CVE-2021-45423). (Closes: #1034725) + + -- David da Silva Polverari Sat, 22 Apr 2023 20:48

Bug#1034714: [pkg-php-pear] Bug#1034714: bullseye-pu: package php-nyholm-psr7/1.3.2-2+deb11u1

Hi, Le 22/04/2023 à 12:59, David Prévot a écrit : […] [x] attach debdiff against the package in stable For real now.diff --git a/debian/changelog b/debian/changelog index bd0b1d7..a0c6ab8 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +php-nyholm-psr7 (1.3.2-2

Bug#1034714: bullseye-pu: package php-nyholm-psr7/1.3.2-2+deb11u1

Package: release.debian.org Severity: normal Tags: bullseye User: release.debian@packages.debian.org Usertags: pu X-Debbugs-Cc: php-nyholm-p...@packages.debian.org, t...@security.debian.org Control: affects -1 + src:php-nyholm-psr7 Hi, Please note that this request is very similar to

Bug#1034713: bullseye-pu: package php-guzzlehttp-psr7/1.7.0-1+deb11u2

--git a/debian/changelog b/debian/changelog index 8635876..0093037 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,9 @@ +php-guzzlehttp-psr7 (1.7.0-1+deb11u2) bullseye; urgency=medium + + * Fix improper input validation [CVE-2023-29197] (Closes: #1034581) + + -- David Prévot Sat, 22

<    1   2   3   4   5   6   7   8   9   10   >